API Deep DiveOESIS Modules

Agenda

• What is OESIS

• Build Endpoint Security Features with OESIS

• API

• OPSWAT Certified Security Applications Program

• Roadmap

• Additional Resources

• Q & A

What is OESIS

Vulnerability Assessment Report 1,000,000+ vulnerable binaries from 15,000+ application versions

Infection DetectionIndication of comprise, quickly assess system security using 3 OPSWAT unique technic

Peripheral ManagementMonitor and manage portable media device, block / unblock USB device and etc.

Application RemovalSilently remove 1,200+ applications including toolbars, ransomware and etc.

Device ComplianceDetect, classify and manage 5,000+ security applications

Endpoint management SDK that enables customers to build security features

License OESIS Framework

and many more….

Build Endpoint Security Features with OESIS

200M+ Endpoints managed

5,000+Third-party applications from 800+ vendors

140,000+ APIs supported

• Vulnerability Assessment

• Infection Detection

• Peripheral Management

• Application Removal

• Device Compliance

Build Endpoint Security Features with OESIS

• 250+ top vulnerable applications

• 10,000+ associated CVE with severity information

• 1,000,000+ identified vulnerable hashes

• 30+ times faster than existing solutions on the market

Vulnerability Assessment

Use case: I want to check whether there are known vulnerabilities on my system or in the

data that is being brought to my network.

Product name OPSWATLeading solution in the market

Notepad++ v x

Oracle Java JRE v v

Paint.NET v x

PuTTY v v

QQ v x

Secunia PSI v v

Silverlight v v

Skype v x

TeamViewer v x

TortoiseGit v x

TortoiseSVN v x

VLC media player v v

vSphere Client v x

Windows Defender v x

Windows Firewall v x

Windows Media Player v x

Windows Update Agent v v

Windows VPN Client v x

WinPcap v x

WinRAR v v

WinSCP v v

Wireshark v v

Zoom v x

Product name OPSWATLeading solution in the market

7-Zip v x

ActivePerl v x

Adobe AIR v v

Adobe Flash Player v v

Beyond Compare v x

Cisco AnyConnect VPN Client v v

ESET Endpoint Security v x

FileZilla v x

Google Chrome v v

Internet Explorer v v

Microsoft Excel v v

Microsoft Filemon x v

Microsoft Lync v v

Microsoft OneNote v v

Microsoft Outlook v x

Microsoft PowerPoint v v

Microsoft Process Explorer x v

Microsoft Publisher v v

Microsoft Regmon x v

Microsoft Visio v v

Microsoft Word v v

Microsoft XML Core Services (MSXML) x v

Mozilla Firefox v v

Infection Detection

Use case: I want to quickly verify whether my system is compromised.

Scan memory componentsWith Metadefender server or our cloud

Search for repeated threatsFrom local installed anti-malware solution

Validate connected IPsAgainst 13 cloud IP reputation engines

Infection Detection

Infection Detection

Scan memory componentsWith Metadefender server or our cloud

Validate connected IPsAgainst 13 cloud IP reputation engines

Infection Detection

Search for repeated threatsFrom local installed anti-malware solution

Infection Detection

Peripheral Management

Use case: I want to block any USB that is connected to my device until the data on it is

examined.

OESIS

BLOCK

ACCESS

EXAM

THE

DATA

UNBLOCK

MEDIA

Application Removal

Support for Endpoint Security Suites

Support for Potentially Unwanted

Applications

• Silent uninstall without user interaction

• Even when end-users have forgotten their passwords

• Even if a prior manual uninstall attempt failed to complete

• Even if product self-protection enabled

Use case: I want to automatically remove all the unwanted applications, I want to uninstall

my legacy security application prior to install the new one.

Use case: I want to know what kind of applications are running on my system/on my

network.

Signature base and system generic detection

• 500+ applications detected on a physical device on average

• 300+ applications analyzed and labeled

• Potentially unwanted applications, ransom ware, etc.

• 15 different security categories

Fast response and small memory footprint

• Same size as msprint.exe, 30% of any browser instance

Device Compliance

16

Challenge from BYOD – Bring Your Own Device

Device Compliance

Use case: I want to ensure end-user’s own device is compliant before connecting to my

network.

Retrieve application status information

• What is anti-malware protection state, virus definition,

last scan time, and threat history

• Which drive volume is encrypted

• Whether system has missing patches

Apply remediation based on security policy

• Trigger full-system scan

• Update malware definitions

• Install missing patches

And 100+ more unique feature APIs

Supported Applications

Auto Update

Always up to date

with hands-free

solution

Reduce discrepancy due to release frequency

Continuous delivery

Specific OESIS versions deployed based on your choosing

Flexibility to roll back any time

Integrating to Metadefender Product Family

C-JSON I/O

API

• Plug and play modules allow you to only

deploy the components you need

• Flag JSON I/O, can be integrated with C++,

C#, Ruby, Java, Python, PHP, and nearly any

programming/scripting languages

• Detail sample code and developer guide

allows for complete integration within three

hours from the start

OESIS Real World Deployment

Quality False Positive Compatibility

OPSWAT Certified Security Applications Program

Gold Certification

Quality

• Ensure solutions pass security auditingAV-TEST

AV-Comparatives

• Weed out rogue security applications

False Positive

• Reduce false positive alarms

• Eliminate unnecessary operation slowdown

Compatibility

• Guarantee compatibility with leading CASB, NAC, SSL-VPN technologies

• Reduce support costs due to security policy incompatibility

OPSWAT Market Share Report

Roadmap Features

• Support for open source Linux projects based on OESIS

• Report vulnerabilities on system binaries and hardware drivers

• Support for Windows phone and more IoT Android Wear Apple Watch and Apple TV Amazon Echo Dot NFC rings

Additional Resources

API documentation:http://software.opswat.com/OESIS_V4/html/

Support charts:

https://software.opswat.com/OESIS_V4/Win/docs/support_charts/support_charts.html

https://software.opswat.com/OESIS_V4/Mac/docs/support_charts/support_charts.html

Thank You!

Jianpeng MoSenior Director of Software Engineering

O 415.590.7300

F 415.590.7399

C 510.610.7208

E jianpeng@opswat.com

398 Kansas St.

San Francisco, CA 94103

www.opswat.com